BenoitCier
/
Opendistrib
forkattu lähteestä Laclic/Souke
Tarkkaile 1
Äänestä 0
Fork 0
Koodi Ongelmat 0 Pull-pyynnöt 0 Julkaisut 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
837 Commitit
2 Branchit
Puu: 5d8771b8a4
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from '5d8771b8a4'
${ noResults }
Opendistrib/vendor/yiisoft/yii2/web/DbSession.php

223 lines
7.1KB
Raaka Blame Historia 

  1. <?php

  2. /**

  3.  * @link http://www.yiiframework.com/

  4.  * @copyright Copyright (c) 2008 Yii Software LLC

  5.  * @license http://www.yiiframework.com/license/

  6.  */

  7. 

  8. namespace yii\web;

  9. 

  10. use Yii;

  11. use yii\db\Connection;

  12. use yii\db\Query;

  13. use yii\base\InvalidConfigException;

  14. use yii\di\Instance;

  15. 

  16. /**

  17.  * DbSession extends [[Session]] by using database as session data storage.

  18.  *

  19.  * By default, DbSession stores session data in a DB table named 'session'. This table

  20.  * must be pre-created. The table name can be changed by setting [[sessionTable]].

  21.  *

  22.  * The following example shows how you can configure the application to use DbSession:

  23.  * Add the following to your application config under `components`:

  24.  *

  25.  * ```php

  26.  * 'session' => [

  27.  *     'class' => 'yii\web\DbSession',

  28.  *     // 'db' => 'mydb',

  29.  *     // 'sessionTable' => 'my_session',

  30.  * ]

  31.  * ```

  32.  *

  33.  * DbSession extends [[MultiFieldSession]], thus it allows saving extra fields into the [[sessionTable]].

  34.  * Refer to [[MultiFieldSession]] for more details.

  35.  *

  36.  * @author Qiang Xue <qiang.xue@gmail.com>

  37.  * @since 2.0

  38.  */

  39. class DbSession extends MultiFieldSession

  40. {

  41.     /**

  42.      * @var Connection|array|string the DB connection object or the application component ID of the DB connection.

  43.      * After the DbSession object is created, if you want to change this property, you should only assign it

  44.      * with a DB connection object.

  45.      * Starting from version 2.0.2, this can also be a configuration array for creating the object.

  46.      */

  47.     public $db = 'db';

  48.     /**

  49.      * @var string the name of the DB table that stores the session data.

  50.      * The table should be pre-created as follows:

  51.      *

  52.      * ```sql

  53.      * CREATE TABLE session

  54.      * (

  55.      *     id CHAR(40) NOT NULL PRIMARY KEY,

  56.      *     expire INTEGER,

  57.      *     data BLOB

  58.      * )

  59.      * ```

  60.      *

  61.      * where 'BLOB' refers to the BLOB-type of your preferred DBMS. Below are the BLOB type

  62.      * that can be used for some popular DBMS:

  63.      *

  64.      * - MySQL: LONGBLOB

  65.      * - PostgreSQL: BYTEA

  66.      * - MSSQL: BLOB

  67.      *

  68.      * When using DbSession in a production server, we recommend you create a DB index for the 'expire'

  69.      * column in the session table to improve the performance.

  70.      *

  71.      * Note that according to the php.ini setting of `session.hash_function`, you may need to adjust

  72.      * the length of the `id` column. For example, if `session.hash_function=sha256`, you should use

  73.      * length 64 instead of 40.

  74.      */

  75.     public $sessionTable = '{{%session}}';

  76. 

  77. 

  78.     /**

  79.      * Initializes the DbSession component.

  80.      * This method will initialize the [[db]] property to make sure it refers to a valid DB connection.

  81.      * @throws InvalidConfigException if [[db]] is invalid.

  82.      */

  83.     public function init()

  84.     {

  85.         parent::init();

  86.         $this->db = Instance::ensure($this->db, Connection::className());

  87.     }

  88. 

  89.     /**

  90.      * Updates the current session ID with a newly generated one .

  91.      * Please refer to <http://php.net/session_regenerate_id> for more details.

  92.      * @param boolean $deleteOldSession Whether to delete the old associated session file or not.

  93.      */

  94.     public function regenerateID($deleteOldSession = false)

  95.     {

  96.         $oldID = session_id();

  97. 

  98.         // if no session is started, there is nothing to regenerate

  99.         if (empty($oldID)) {

  100.             return;

  101.         }

  102. 

  103.         parent::regenerateID(false);

  104.         $newID = session_id();

  105. 

  106.         $query = new Query();

  107.         $row = $query->from($this->sessionTable)

  108.             ->where(['id' => $oldID])

  109.             ->createCommand($this->db)

  110.             ->queryOne();

  111.         if ($row !== false) {

  112.             if ($deleteOldSession) {

  113.                 $this->db->createCommand()

  114.                     ->update($this->sessionTable, ['id' => $newID], ['id' => $oldID])

  115.                     ->execute();

  116.             } else {

  117.                 $row['id'] = $newID;

  118.                 $this->db->createCommand()

  119.                     ->insert($this->sessionTable, $row)

  120.                     ->execute();

  121.             }

  122.         } else {

  123.             // shouldn't reach here normally

  124.             $this->db->createCommand()

  125.                 ->insert($this->sessionTable, $this->composeFields($newID, ''))

  126.                 ->execute();

  127.         }

  128.     }

  129. 

  130.     /**

  131.      * Session read handler.

  132.      * Do not call this method directly.

  133.      * @param string $id session ID

  134.      * @return string the session data

  135.      */

  136.     public function readSession($id)

  137.     {

  138.         $query = new Query();

  139.         $query->from($this->sessionTable)

  140.             ->where('[[expire]]>:expire AND [[id]]=:id', [':expire' => time(), ':id' => $id]);

  141. 

  142.         if ($this->readCallback !== null) {

  143.             $fields = $query->one($this->db);

  144.             return $fields === false ? '' : $this->extractData($fields);

  145.         }

  146. 

  147.         $data = $query->select(['data'])->scalar($this->db);

  148.         return $data === false ? '' : $data;

  149.     }

  150. 

  151.     /**

  152.      * Session write handler.

  153.      * Do not call this method directly.

  154.      * @param string $id session ID

  155.      * @param string $data session data

  156.      * @return boolean whether session write is successful

  157.      */

  158.     public function writeSession($id, $data)

  159.     {

  160.         // exception must be caught in session write handler

  161.         // http://us.php.net/manual/en/function.session-set-save-handler.php#refsect1-function.session-set-save-handler-notes

  162.         try {

  163.             $query = new Query;

  164.             $exists = $query->select(['id'])

  165.                 ->from($this->sessionTable)

  166.                 ->where(['id' => $id])

  167.                 ->createCommand($this->db)

  168.                 ->queryScalar();

  169.             $fields = $this->composeFields($id, $data);

  170.             if ($exists === false) {

  171.                 $this->db->createCommand()

  172.                     ->insert($this->sessionTable, $fields)

  173.                     ->execute();

  174.             } else {

  175.                 unset($fields['id']);

  176.                 $this->db->createCommand()

  177.                     ->update($this->sessionTable, $fields, ['id' => $id])

  178.                     ->execute();

  179.             }

  180.         } catch (\Exception $e) {

  181.             $exception = ErrorHandler::convertExceptionToString($e);

  182.             // its too late to use Yii logging here

  183.             error_log($exception);

  184.             if (YII_DEBUG) {

  185.                 echo $exception;

  186.             }

  187.             return false;

  188.         }

  189. 

  190.         return true;

  191.     }

  192. 

  193.     /**

  194.      * Session destroy handler.

  195.      * Do not call this method directly.

  196.      * @param string $id session ID

  197.      * @return boolean whether session is destroyed successfully

  198.      */

  199.     public function destroySession($id)

  200.     {

  201.         $this->db->createCommand()

  202.             ->delete($this->sessionTable, ['id' => $id])

  203.             ->execute();

  204. 

  205.         return true;

  206.     }

  207. 

  208.     /**

  209.      * Session GC (garbage collection) handler.

  210.      * Do not call this method directly.

  211.      * @param integer $maxLifetime the number of seconds after which data will be seen as 'garbage' and cleaned up.

  212.      * @return boolean whether session is GCed successfully

  213.      */

  214.     public function gcSession($maxLifetime)

  215.     {

  216.         $this->db->createCommand()

  217.             ->delete($this->sessionTable, '[[expire]]<:expire', [':expire' => time()])

  218.             ->execute();

  219. 

  220.         return true;

  221.     }

  222. }